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In the Claims: 

This listing of claims will replace all prior versions, and listings of claims in the 
application. The status of each claim is indicated. Currently amended claims are shown 
with additions underlined and deletions in strikethrough t e xt . Claims 10-19 have been 
previously cancelled. Please cancel claims 5, 8-9, 20, 32 and 33 without disclaimer of 
the subject matter therein. Please add new claims 38 - 42. No new matter has been 
added. 

1 . (Currently Amended) A system for ensuring the identity and travel privileges of 
potential travelers, comprising: 

a. at least one institution for researching and recording an identity and at least one 
travel privilege for individuals; 

b. at least one database maintained by the institution for associating identified 
individuals' names, an assigned asymmetric key pair, and the at least one travel privilege, 
said at least one travel privilege including: 

i. at least one destination restriction; 

ii. at least one date and time restriction; 

iii. at least one mode of transportation restriction; 

iv. at least one operator restriction; and 

v. an expiration date for each at least one travel privilege; 

c. at least one travel privilege certificate associated with the at least one travel 
privilege and further associated with an identified individual; and 

d. at least one personal identification device including a means for enrolling and 
authenticating individuals the identified individual based on a biometric and managing 
trav e l privilege certificat e s . 

2. (Original) The system described in claim 1, wherein the travel privilege certificate 
comprises: 

a. a name field, comprising the identified individual's full name; 
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b. a date field, comprising a date when the identified individual is allowed to 

travel; 

c. a time field, comprising a time when the identified individual is allowed to 

travel; 

d. a mode of transportation field, comprising a list of the modes of transportation 
that the identified individual is allowed to employ; 

e. a type of privilege field, comprising the type of privilege signified by the travel 
privilege certificate; 

f. an issue date field, comprising the date when the travel privilege certificate is 

issued; 

g. an expiration date field, comprising the date when the travel privilege 
certificate is no longer valid; 

h. a unique serial number; and 

i. a digital signature created by the issuer of the travel privilege certificate. 

3. (Original) The system described in claim 2 wherein the list of the modes of 
transportation includes at least one mode selected from the group consisting of a train, a 
bus, a car, an airplane and a ship. 

4. (Original) The system described in claim 2 wherein the type of privilege is 
selected from the group consisting of a reservation ticket, a boarding pass, a port-of-entry 
permission and a vehicle operator permission. 

5. (Canceled) 

6. (Currently Amended) The system described in claim 1 wherein the at least one 
personal identification device includes: means — for enrolling and — authenticating 
individuals and managing travel privil e ge certificates, compris e s: 

a. first download means for communicating, the means for communicating 
configured to downloading at least one travel privilege certificate to said personal 
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identification device s download a computing mechanism onto the personal identification 
device, download a digital certificate and asymmetric key pair for the individual into the 
personal identification device 

b. transmission m e ans and fer-transmitting at least one travel privilege certificate 

from said personal identification device; 

be. recording means for recording at least one notable event on said personal 
identification device; 

cd. first storag e means for storing at least one travel privilege certificate on said 
personal identification devicef and 

e . second storage means for storing at least one application audit log on said 

personal identification device. 

7. (Currently Amended) The system described in claim 6, furth e r comprising 
wherein the at least one personal identification device includes : 

a. verification m eans for verifying an individual's personal identity receiving the 
biometric of the identified individual prior to the identified individual being authenticated 
based on the biometric and prior issuing the travel privilege certificatet 

b. second download means for downloading a computing mechanism onto th e 

p e rsonal id e ntification d e vic e ; and 

c. third download means for downloading a digital c e rtificat e and asymm e tric k e y 

pair for the individual into the personal identification device . 

8-20. (Canceled) 

21. (Currently Amended) A processor-readable medium located at a personal 
identification device and storing cod e repr e s e nting instructions that when executed te 
cause a processor to perform a proc e ss, th e cod e comprising code to the following 
method : 
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authenticat e , authenticating, at a personal identification device, a biometric input 
from a user based on a biometric template stored at the personal identification device and 
associated with the user; and 

sending a request for a travel permission information from the personal 
identification device when the biometric input from the user is authenticated. 

22. (Currently Amended) The processor-readable medium of claim 21, the cede 
method further comprising code to : 

r e c e iv e receiving the biometric input from the user before the authenticating the 
biometric input from the user is authenticat e d , the biometric input being at least one of a 
fingerprint information of the user, a retinal information of the user and an image 
information of the user. 

23. (Currently Amended) The processor-readable medium of claim 21, wherein the 
request includes the biometric input a personal identity credential from the user , the 
personal identity credential excludes the biometric input from the user and the biometric 
template associated with the user . 

24. (Currently Amended) The processor-readable medium of claim 21, the cede 
method further comprising code to : 

send ing an admission ticket information associated with the travel permission 
information when the biometric input from the user is authenticated at the personal 
identification device . 

25. (Currently Amended) The processor-readable medium of claim 21^ wherein the 
travel permission information is associated with an admission ticket of a travel provider. 

26. (Currently Amended) The processor-readable medium of claim 21 A wherein the 
travel permission information includes at least one of a time restriction, a mode of 
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transportation restriction, a destination restriction, a date restriction, an operator 
restriction, and an expiration date restriction. 

27. (Currently Amended) The processor-readable medium of claim 21 i wherein the 
travel permission information is encrypted based on an asymmetric key pair associated 
with a travel governing authority. 

28. (Currently Amended) The processor-readable medium of claim 21, the cede 
method further comprisin g cod e to : 

enroll ing the biometric template at an enrollment authority station b efore the 
authenticating the biometric input from the use r is authenticat e d . 

29. (Currently Amended) A processor-readable medium located at a personal 
identification device and storing code repr e s e nting instructions that when executed to 
cause a processor to perform a process, th e cod e comprising code to the following 
method : 

r e c e iv e receiving a request for a travel permission information from a personal 
identification device associated with a user, the request including at least one a biometric 
information of th e user or an auth e ntication of th e of a personal identity credential of the 
user excluding b iometric information or an authentication of the biometric information of 
the user performed at the personal identification device, the authentication excluding 
biometric information ; and 

sending the travel permission information associated with the user when the 
biom e tric information is authenticat e d based on the at least one of the personal identity 
credential of the user or the authentication , the travel permission information being 
encrypted based on an asymmetric key pair. 



30. (Currently Amended) The processor-readable medium of claim 29, the eede 
method further comprising code to : 
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produc e producing the travel permission information based on the biometric 
information p ersonal identity credential of the user before the sending the travel 
permission information4s-sent. 

31. (Currently Amended) The processor-readable medium of claim 29, the eede 
method further comprising code to : 

obtain ing the travel permission information associated with the user from a 
database before the sending the travel permission information is sent , the database 
including at least one personal identity credential for each user from a plurality of users, 
each user from the plurality of users being associated with at least one travel permission 
information. 

32-33. (Canceled) 

34. (Currently Amended) The processor-readable medium of claim 29, wherein the 
biometric information is a fingerprint information of the use r, the code furth e r comprising 

r e c e ive th e fing e rprint information of th e us e r b e for e th e trav e l p e rmission 

information is sent; and 

authenticat e , b e for e th e trav e l permission information is sent, th e fing e rprint 

information of th e us e r . 

35. (Previously Presented) The processor-readable medium of claim 29, wherein the 
travel permission information is sent to the personal identification device of the user. 

36. (Currently Amended) The processor-readable medium of claim 29, the e©4e 
method further comprising cod e to : 

r e c e ive receiving the travel permission information from an enrollment authority 
station before the sending the travel permission information4s-sent. 
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37. (Previously Presented) The processor-readable medium of claim 29, wherein the 
travel permission information includes at least one of a time restriction, a mode of 
transportation restriction, a destination restriction, a date restriction, an operator 
restriction, and an expiration date restriction. 

38. (New) The processor-readable medium of claim 21, wherein the personal 
identification device is portable and is configured to be used when being transported. 

39. (New) The processor-readable medium of claim 21, wherein the user is an 
operator of a vehicle, the method further comprising: 

sending an authentication of the biometric input from the user based on the 
biometric template associated with the user, the authentication excluding the biometric 
input of the user and the biometric template associated with the user. 

40. (New) The processor-readable medium of claim 29, wherein the personal 
identification device is portable. 

41 . (New) The processor-readable medium of claim 29, wherein the authentication of 
the biometric information of the user is a first authentication of the biometric information 
of the user, the method further comprising: 

receiving from the personal identification device a second authentication of the 
biometric information of the user when the user is operating a vehicle, the second 
authentication being performed at the personal identification device and excluding 
biometric information. 

42. (New) The processor-readable medium of claim 29, the method further 
comprising: 

receiving the travel permission information from a travel-governing authority 
associated with enrollment of the biometric information to the personal identification 
device. 



